Access Privileges for Database-Related Resources
Use
We recommend that you restrict the UNIX file and directory access privileges as shown in the table below. For more information, see Setting Access Privileges for Files and Directories.
|
Oracle Directory or File |
Access Privilege in Octal Form 4.x |
Owner |
Group |
Comment |
|---|---|---|---|---|
|
/oracle/<DBSID>/sapdata* |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/sapdata*/* |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/sapdata*/*/* |
640 |
ora<dbsid> |
dba |
Data files |
|
/oracle/<DBSID>/oraarch |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/oraarch /* |
640 |
ora<dbsid> |
dba |
Archive files |
|
/oracle/<DBSID>/saparch |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/sapreorg |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/sapbackup |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/dbs |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/sapcheck |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/sapstat |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/saptrace |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/saptrace/* |
755 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/saptrace/*/* |
640 |
ora<dbsid> |
dba |
|
|
/oracle/<DBSID>/origlog* |
755 |
ora<dbsid> |
dba |
Redo log directories |
|
/oracle/<DBSID>/origlog*/* |
640 |
ora<dbsid> |
dba |
Redo log files |
|
/oracle/<DBSID>/mirrlog* |
755 |
ora<dbsid> |
dba |
Redo log directories |
|
/oracle/<DBSID>/mirrlog*/* |
640 |
ora<dbsid> |
dba |
Redo log files |